Amendments of the Claims 

This listing of claims will replace all prior versions, and listings, of claims in the 
application. 

1: (Canceled) 

2: (Previously Presented) The method of claim 7, further including: 

the granting service generating a Ticket-Granting-Ticket utilizing a protocol 

substantially in compliance with the Kerberos protocol; and 

wherein receiving by the granting service a request for a Service Ticket from a 

client further includes the granting service receiving the Ticket-Granting-Ticket from the 

client. 

3: (Currently Amended) The method of claim 7, wherein the granting service 
1 1 Ion. if ing ifthc r equested iu- i - put* sd-.- d by a plurality of s 
if so. the granting service further 

determining atfee number of the servers designated to provide the 
requested service ; and 

encrypting a cipher text with each of the session keys; 
wherein the determining includes: 

the granting service utilizing a database that maps a generic server 
name to a specific server name; and 

the granting service setting the numbers of servers designated to 
provide the service equal to the number of specific server names mapped 
to the generic server name that provides the requested service. 
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4: (Previously Presented) The method of claim 3, wherein the granting service utilizing 
a database that maps a generic server name to a specific server name includes the 
granting service selecting a database from a group consisting essentially of: 
a domain name server database, 

a database associated with a Key Distribution Center, and 
a Kerberos database. 

5 : (Original) The method of claim 3, wherein the secret keys associated with each 
providing server are not synchronized across the providing servers. 

6: (Currently Amended) The method of claim -7-3, wherein the created Service Ticket 
includes: 

a header that designates the Service Ticket as a format that includes multiple 
encrypted session keys, 

a field that expressly designates the number of encrypted session keys, 
an encrypted session key for each providing server, and 
the encrypted cipher text. 

7: (Currently Amended) A method of generating a Service Ticket for a requested 
Service comprising: 

receiving by a granting service of a computing device, the computing device 
being different and distinct from a client, a request for a Service Ticket from the client; 

the granting service determining if the requested service is provided by a plurality 
of servers: 

if not, the granting service generating the Service Ticket utilizing a single server 
mode; and 

if so, the granting service: 



IPN: PI 7253 



-3- 

Attorney's Docket No.: 116536-153507 
Application No.: 10/696,443 



generating a session key; 

encrypting a cipher-text--* 
dete-fflMfti-ng-tt--ftttmbe-t--e-f-; 



-wkh-tbe- 



session k e y; 
■4emj^edeM&-p¥&Yi4e-4he--m-qH<3ste4 



service; 

for each providing server, encrypting the session key with a secret key 
associated with each respective server; 

creating a Service Ticket that includes an- the encrypted session keys for 



8: (Previously Presented) The method of claim 7, wherein the granting service 
generating the Service Ticket utilizing a single server mode includes: 
the granting service generating a cipher text; 

the granting service encrypting the cipher text with a secret key associated with 
the providing server; and 

the granting service transmitting the Service Ticket, that includes the encrypted 
cipher text, to the client. 

9: (Canceled) 

10: (Previously Presented) The method of claim 13, wherein the receiving server 
receiving a Service Ticket is part of a series of client transactions substantially in 
compliance with the Kerberos protocol. 

1 1 : (Currently Amended) The method of claim 13, wherein the receiving server 
decrypting the encrypted session key includes: 

the receiving server determining the-a_number of the piuralitlv of encrypted 
session keys included within the received Service Ticket; 

for each encrypted session key, the receiving server decrypting the encrypted 



eaeh- the pluralilty of providing servers y - aad-theene 
transmitting the Service Ticket to the client. 




t; and 
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session key utilizing a secret key associated with the receiving server; and 

wherein the receiving server decrypting the cipher text utilizing the decrypted session 

key includes 

for each encrypted session key, the receiving server attempting to decrypt the 
cipher text with the decrypted session key; 

if the cipher text is successfully decrypted, the receiving server providing the 
service to the client. 

12: (Previously Presented) The method of claim 13, wherein the receiving server 
decrypting the encrypted session key associated with the receiving server utilizing a 
secret key associated with the receiving server includes: 

the receiving server utilizing a server identifier to determine which encrypted 
session key is associated with the receiving server; and 

the receiving server decrypting the associated encrypted session key utilizing a 
secret key associated with the receiving server. 

13: (Currently Amended) A method of authenticating a client's request for a service 
provided by a service pool comprising: 

a server receiving a Service Ticket, the client having at least one encrypted 
session key, and an encrypted cipher text, the client sending service tickets to multiple 
severs, including the server, to establish multiple connections; 

the receiving server determining if the received Service Ticket includes a plurality 
of encrypted session keys for multiple servers 

if not, the receiving server processing the ticket in a single server mode; and 
if so, the receiving server: 

decrypting the encrypted session keys associated with th e r e c e iving M H-y-ef 
utilizing a secret key associated with the receiving server; 

decrypting the cipher text utilizing the decrypted session key; and 
providing the service to the client. 
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14. (Original) The method of claim 13, wherein the receiving server processing the 
ticket in a single server mode includes the receiving server processing the Service Ticket 
in utilizing a process substantially compliant with the Kerberos protocol. 

15. (Previously Presented) The method of claim 13, wherein the receiving server 
receiving a Service Ticket includes: 

a managing agent first receiving a Service Ticket; 

the managing agent selecting the receiving server from a server pool having a 
plurality of servers; 

routing the Service Ticket to the receiving server. 

16. (Previously Presented) The method of claim 15, wherein the plurality of servers 
each includes a secret key associated with the respective servers, and the plurality of 
secret keys are not synchronized among the plurality of servers.. 

17. (Original) The method of claim 16, wherein the server pool functions as a group of 
independent computers working together as a single system. 

18-34. (Canceled) 

35: (Previously Presented) The article of claim 40, further including instructions 
providing for: 

the granting service generating a Ticket-Granting-Ticketing utilizing a protocol 
substantially in compliance with the Kerberos protocol; and 

wherein receiving by the granting service a request for a Service Ticket from a 
client further includes receiving by the granting service the Ticket-Granting-Ticket from 
the client. 
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36: (Currently Amended) The article of claim 40, wherein the instructions are further 
provided for the granting service determining if the regisc-tid s„ . >vided by a 

plurality of servers: if so, pgevMffig-ftM-thc granting service; 

determining the-a_number of the servers designated to provide the requested 
service ; and 

encrypting a cipher text with each of the session keys; 

e iii . mg, includes instructions pros idi ng pros kied lor: 

the granting service utilizing a database that maps a generic server name 
to a specific server name; and 

the granting service setting the numbers of servers designated to provide 
the service equal to the number of specific server names mapped to the generic 
server name that provides the requested service. 

37: (Previously Presented) The article of claim 36, wherein the instructions providing 
for the granting service utilizing a database that maps a generic server name to a specific 
server name includes instructions providing for the granting service selecting a database 
from a group consisting essentially of: 
a domain name server database, 

a database associated with a Key Distribution Center, and 
a Kerberos database. 

38: (Original) The article of claim 36, wherein the secret keys associated with each 
providing server are not synchronized across the providing servers. 

39: (Currently Amended) The article of claim 4036, wherein the instructions providing 
for the granting service creating a Service Ticket further includes instructions providing 
for creating by the granting service a Service Ticket that includes: 

a header that designates the Service Ticket as a format that includes multiple 
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encrypted session keys, 

a field that expressly designates the number of encrypted session keys, 
an encrypted session key for each providing server, and 
the encrypted cipher text. 



40: (Currently Amended) An article comprising: 

a storage medium having a plurality of machine accessible instructions, wherein when the 
instructions are executed by a computing device, the instructions provide for: 

receiving by a granting service of the computing device, the computing 

device being different and distinct from a client, a request for a Service Ticket 

from the client; 

the granting service determining if the requested service is provided by a 
plurality of servers: 

if not, generating by the granting service the Service Ticket utilizing a 
single server mode; and 

if so, the granting service: 

generating a session key; 

encrypting a cipher text with the session key: 

determining the number of servers designated to provide the 
requested sendee; 

for each providing server, encrypting the session key with a secret 
key associated with each respective server; 

creating a Service Ticket that includes an- the encrypted session 
keys for the plurality of e aefaprov i d i ng servers^ 
text; and 

transmitting the Service Ticket to the client. 



41 : (Previously Presented) The article of claim 40, wherein the instructions providing 
for the granting service generating the Service Ticket utilizing a single server mode 
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includes instructions providing for: 

the granting service generating a cipher text; 

the granting service encrypting the cipher text with a secret key associated with 
the providing server; and 

the granting service transmitting the Service Ticket, that includes the encrypted 
cipher text, to the client. 

42: (Canceled) 

43: (Previously Presented) The article of claim 46, wherein the instructions provide for 
the server receiving a Service Ticket are part of a series of client transactions 
substantially in compliance with the Kerberos protocol. 

44: ( p-t = e - we -i ^s l y -- PFe 8 e«te d Ca.irrently Amended ) The article of claim 46, wherein the 
instructions provide for the server decrypting the encrypted session key includes 
instructions provide for: 

the server determining tfee-a_number o f the plurality of encrypted session keys 
included within the received Service Ticket; 

for each encrypted session key, the server decrypting the encrypted session key 
utilizing a secret key associated with the receiving server; and 
wherein decrypting the cipher text utilizing the decrypted session key includes 

for each encrypted session key, the server attempting to decrypt the cipher text 
with the decrypted session key; 

if the cipher text is successfully decrypted, the server providing the service to the 

client. 

45 : (Previously Presented) The article of claim 46, wherein the instructions provide for 
the server decrypting the encrypted session key associated with the receiving server 
utilizing a secret key associated with the receiving server includes instructions provide 
for: 
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the server utilizing a server identifier to determine which encrypted session key is 
associated with the receiving server; and 

the server decrypting the associated encrypted session key utilizing a secret key 
associated with the receiving server. 

46: (Currently Amended) An article comprising: 

a storage medium having a plurality of machine accessible instructions, wherein 
when the instructions are executed by a server, the instructions provide for: 

the server receiving a Service Ticket, from a client having at least one encrypted 
session key, and an encrypted cipher text, the client sending service tickets to multiple 
severs, including the server, to establish multiple connections; 

the server determining if the received Service Ticket includes a plurality of 
encrypted session keys for multiple servers 

if not, the server processing the ticket in a single server mode; and 

if so, the server: 

decrypting the encrypted session keys ■ ossee i ated-w - ith-the 
receiving server -utilizing a secret key associated with the receiving 
server; 

decrypting the cipher text utilizing the decrypted session key; and 
providing the service to the client. 

47. (Previously Presented) The article of claim 46, wherein the instructions provide for 
the server processing the ticket in a single server mode includes instructions provide for 
the server processing the Service Ticket in utilizing a process substantially compliant 
with the Kerberos protocol. 

48. (Previously Presented) The article of claim 46, wherein the instructions provide for 
the server receiving a Service Ticket includes instructions provide for: 
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a managing agent first receiving a Service Ticket; 

the managing agent selecting the server from a server pool having a plurality of 

servers; 

routing the Service Ticket to the server. 

49. (Previously Presented) The article of claim 48, wherein the plurality of servers each 
includes a secret key associated with the respective servers, and the plurality of secret 
keys are not synchronized among the plurality of servers.. 

50. (Original) The article of claim 49, wherein the server pool functions as a group of 
independent computers working together as a single system. 
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